Vulnerabilities > Linuxfoundation > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-16 CVE-2023-25173 Unspecified vulnerability in Linuxfoundation Containerd
containerd is an open source container runtime.
local
low complexity
linuxfoundation
7.8
7.8
2023-02-08 CVE-2023-25151 Unspecified vulnerability in Linuxfoundation Opentelemetry-Go Contrib 0.38.0
opentelemetry-go-contrib is a collection of extensions for OpenTelemetry-Go.
network
low complexity
linuxfoundation
7.5
7.5
2023-01-26 CVE-2022-25882 Path Traversal vulnerability in Linuxfoundation Onnx
Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory, for example "../../../etc/passwd"
network
low complexity
linuxfoundation CWE-22
7.5
7.5
2023-01-13 CVE-2022-46463 Missing Authentication for Critical Function vulnerability in Linuxfoundation Harbor
An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication.
network
low complexity
linuxfoundation CWE-306
7.5
7.5
2023-01-03 CVE-2022-23506 Unspecified vulnerability in Linuxfoundation Spinnaker
Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes, and Spinnaker's Rosco microservice produces machine images.
network
low complexity
linuxfoundation
7.5
7.5
2022-12-07 CVE-2022-46770 Infinite Loop vulnerability in Linuxfoundation Mirage Firewall
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of forwarding) via a crafted multicast UDP packet (IP address range of 224.0.0.0 through 239.255.255.255).
network
low complexity
linuxfoundation CWE-835
7.5
7.5
2022-11-27 CVE-2022-45930 SQL Injection vulnerability in Linuxfoundation Opendaylight
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5.
network
low complexity
linuxfoundation CWE-89
7.5
7.5
2022-11-27 CVE-2022-45931 SQL Injection vulnerability in Linuxfoundation Opendaylight
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5.
network
low complexity
linuxfoundation CWE-89
7.5
7.5
2022-11-27 CVE-2022-45932 SQL Injection vulnerability in Linuxfoundation Opendaylight
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5.
network
low complexity
linuxfoundation CWE-89
7.5
7.5
2022-11-19 CVE-2022-41939 Unspecified vulnerability in Linuxfoundation Knative Func
knative.dev/func is is a client library and CLI enabling the development and deployment of Kubernetes functions.
network
low complexity
linuxfoundation
7.4
7.4